Sponsored Links

Sponsored Links

Page 7 of 35 FirstFirst ... 5678917 ... LastLast
Results 61 to 70 of 342



  1. #61
    Senior Member Natepig's Avatar
    Join Date
    Feb 2010
    Posts
    727
    Sponsored Links
    Sponsored Links
    Shutting down psn around the same time xbox live is free is a something sony would not have done lightly, which would suggest that it was not planned and rather a response to some kind of external influence.

    I'm missing psn a lot but some down time is ok with me if it will stop online cheaters who are too cheap to buy a second ps3 for online.

  2. #62
    Senior Member barrybarryk's Avatar
    Join Date
    Oct 2010
    Posts
    1,082
    Sponsored Links
    Sponsored Links
    Quote Originally Posted by natepig View Post
    I'm missing psn a lot but some down time is ok with me if it will stop online cheaters who are too cheap to buy a second ps3 for online.
    Online cheating has nothing to CFW, homebrew or jailbreaking.

  3. #63
    Senior Member Transient's Avatar
    Join Date
    Apr 2007
    Posts
    334
    Sponsored Links
    Sponsored Links
    Quote Originally Posted by aamir007 View Post
    Its mainly due to Rebug users all over PSN Dev servers and not anonymous.
    I seriously doubt that. If that were the case, then Sony would take down the dev servers, not the entire PSN.

    IMO, the most likely scenario is compromised admin accounts or unrestricted access to confidential personal information (eg. credit card details). Sony is all about the almighty dollar, so whatever the case may be, taking down PSN was the least costly option for them and that's really saying something since they're losing a ton of revenue in the process.

  4. #64
    Senior Member elser1's Avatar
    Join Date
    Oct 2010
    Posts
    2,419
    all i know is it's slack.. should have been fixed by now. i want refund on my time for psn plus.. i know its probably 50c i don't care its the principle and i will be trying to get this refunded..

  5. #65
    Junior Member KRaZE's Avatar
    Join Date
    Nov 2008
    Posts
    67
    Quote Originally Posted by Transient View Post
    I seriously doubt that. If that were the case, then Sony would take down the dev servers, not the entire PSN.

    IMO, the most likely scenario is compromised admin accounts or unrestricted access to confidential personal information (eg. credit card details). Sony is all about the almighty dollar, so whatever the case may be, taking down PSN was the least costly option for them and that's really saying something since they're losing a ton of revenue in the process.
    Great way to put it into perspective for everyone.

  6. #66
    Member anon777's Avatar
    Join Date
    Jan 2011
    Posts
    68
    well look no further because sony is responsible for this they messed up and couldn't fix it in time and blamed it on hackers, so they can cover there own butt for there screw ups.

  7. #67
    Senior Member GrandpaHomer's Avatar
    Join Date
    Apr 2005
    Posts
    1,316
    Following up on their previous report and [Register or Login to view links] from US Senator Richard Blumenthal, Sony has now posted an update to the PSN and Qriocity service outage admitting that user account information was indeed compromised by PS3 hackers.

    Sony has also stated that they expect normal PlayStation Network services to resume within a week, with what may be [Register or Login to view links] and [Register or Login to view links] from the PSN server surfacing from Dutch site [Register or Login to view links] via [Register or Login to view links] alongside an [Register or Login to view links] on the event.

    To quote from Sony's Sr. Director Corporate Communications & Social Media Patrick Seybold via PS Blog:





    Thank you for your patience while we work to resolve the current outage of PlayStation Network & Qriocity services. We are currently working to send a similar message to the one below via email to all of our registered account holders regarding a compromise of personal information as a result of an illegal intrusion on our systems.

    These malicious actions have also had an impact on your ability to enjoy the services provided by PlayStation Network and Qriocity including online gaming and online access to music, movies, sports and TV shows. We have a clear path to have PlayStation Network and Qriocity systems back online, and expect to restore some services within a week.

    We’re working day and night to ensure it is done as quickly as possible. We appreciate your patience and feedback.





    Valued PlayStation Network/Qriocity Customer:

    We have discovered that between April 17 and April 19, 2011, certain PlayStation Network and Qriocity service user account information was compromised in connection with an illegal and unauthorized intrusion into our network. In response to this intrusion, we have:

    Temporarily turned off PlayStation Network and Qriocity services; Engaged an outside, recognized security firm to conduct a full and complete investigation into what happened; and Quickly taken steps to enhance security and strengthen our network infrastructure by re-building our system to provide you with greater protection of your personal information.

    We greatly appreciate your patience, understanding and goodwill as we do whatever it takes to resolve these issues as quickly and efficiently as practicable.

    Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained.

    If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.

    For your security, we encourage you to be especially aware of email, telephone, and postal mail scams that ask for personal or sensitive information. Sony will not contact you in any way, including by email, asking for your credit card number, social security number or other personally identifiable information. If you are asked for this information, you can be confident Sony is not the entity asking. When the PlayStation Network and Qriocity services are fully restored, we strongly recommend that you log on and change your password. Additionally, if you use your PlayStation Network or Qriocity user name or password for other unrelated services or accounts, we strongly recommend that you change them, as well.

    To protect against possible identity theft or other financial loss, we encourage you to remain vigilant, to review your account statements and to monitor your credit reports. We are providing the following information for those who wish to consider it:

    U.S. residents are entitled under U.S. law to one free credit report annually from each of the three major credit bureaus. To order your free credit report, visit [Register or Login to view links] or call toll-free (877) 322-8228.

    We have also provided names and contact information for the three major U.S. credit bureaus below. At no charge, U.S. residents can have these credit bureaus place a “fraud alert” on your file that alerts creditors to take additional steps to verify your identity prior to granting credit in your name. This service can make it more difficult for someone to get credit in your name.

    Note, however, that because it tells creditors to follow certain procedures to protect you, it also may delay your ability to obtain credit while the agency verifies your identity. As soon as one credit bureau confirms your fraud alert, the others are notified to place fraud alerts on your file. Should you wish to place a fraud alert, or should you have any questions regarding your credit report, please contact any one of the agencies listed below.

    Experian: 888-397-3742; [Register or Login to view links]; P.O. Box 9532, Allen, TX 75013
    Equifax: 800-525-6285; [Register or Login to view links]; P.O. Box 740241, Atlanta, GA 30374-0241
    TransUnion: 800-680-7289; [Register or Login to view links]; Fraud Victim Assistance Division, P.O. Box 6790, Fullerton, CA 92834-6790

    You may wish to visit the web site of the U.S. Federal Trade Commission at [Register or Login to view links] or reach the FTC at 1-877-382-4357 or 600 Pennsylvania Avenue, NW, Washington, DC 20580 for further information about how to protect yourself from identity theft.

    Your state Attorney General may also have advice on preventing identity theft, and you should report instances of known or suspected identity theft to law enforcement, your State Attorney General, and the FTC.

    For North Carolina residents, the Attorney General can be contacted at 9001 Mail Service Center, Raleigh, NC 27699-9001; telephone (877) 566-7226; or [Register or Login to view links]. For Maryland residents, the Attorney General can be contacted at 200 St. Paul Place, 16th Floor, Baltimore, MD 21202; telephone: (888) 743-0023; or [Register or Login to view links].

    We thank you for your patience as we complete our investigation of this incident, and we regret any inconvenience. Our teams are working around the clock on this, and services will be restored as soon as possible. Sony takes information protection very seriously and will continue to work to ensure that additional measures are taken to protect personally identifiable information.

    Providing quality and secure entertainment services to our customers is our utmost priority. Please contact us at 1-800-345-7669 should you have any additional questions.

    Sincerely,
    Sony Computer Entertainment and Sony Network Entertainment

    Playstation Blog updated with latest info:
    Thank you for your patience while we work to resolve the current outage of PlayStation Network & Qriocity services. We don’t have an exact date to share at this moment as to when we will have the services turned on, but are working day and night to ensure it is as quickly as possible. We are currently working to send the following message via email to all of our registered account holders regarding a compromise of personal information as a result of this malicious attack on our servers, so please look for this information via email as well. Please note that we are as upset as you are regarding this attack and are going to proceed aggressively to track down those that are responsible.
    Source, full text and letter (plus "interresting" comments below) here: [Register or Login to view links]

    Letter:
    Valued PlayStation Network/Qriocity Customer,

    We have discovered that between April 17 and April 19, 2011, certain PlayStation Network and Qriocity service user account information was compromised in connection with an illegal and unauthorized intrusion into our network. In response to this intrusion, we have:

    1) Temporarily turned off PlayStation Network and Qriocity services;

    2) Engaged an outside, recognized security firm to conduct a full and complete investigation into what happened; and

    3) Quickly taken steps to enhance security and strengthen our network infrastructure by re-building our system to provide you with greater protection of your personal information.

    We greatly appreciate your patience, understanding and goodwill as we do whatever it takes to resolve these issues as quickly and efficiently as practicable.

    Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state/province, zip or postal code), country, email address, birthdate, PlayStation Network/Qriocity passwords and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence that credit card data was taken at this time, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, to be on the safe side we are advising you that your credit card number (excluding security code) and expiration date may also have been obtained.

    For your security, we encourage you to be especially aware of email, telephone, and postal mail scams that ask for personal or sensitive information. Sony will not contact you in any way, including by email, asking for your credit card number, social security, tax identification or similar number or other personally identifiable information. If you are asked for this information, you can be confident Sony is not the entity asking. When the PlayStation Network and Qriocity services are fully restored, we strongly recommend that you log on and change your password. Additionally, if you use your PlayStation Network or Qriocity user name or password for other unrelated services or accounts, we strongly recommend that you change them, as well.

    To protect against possible identity theft or other financial loss, we encourage you to remain vigilant to review your account statements and to monitor your credit or similar types of reports.

    We thank you for your patience as we complete our investigation of this incident, and we regret any inconvenience. Our teams are working around the clock on this, and services will be restored as soon as possible. Sony takes information protection very seriously and will continue to work to ensure that additional measures are taken to protect personally identifiable information. Providing quality and secure entertainment services to our customers is our utmost priority. Please check [Register or Login to view links] should you have any additional questions.

    Sincerely,

    Sony Network Entertainment and Sony Computer Entertainment Teams
    Sony Network Entertainment Europe Limited (formerly known as PlayStation Network Europe Limited) is a subsidiary of Sony Computer Entertainment Europe Limited the data controller for PlayStation Network/Qriocity personal data.
    Finally, to quote from PSX-Sense / SKFU: "Above is a screenshot of their PSN servers access logs. This log is created on the main server of the PlayStation Network. Likely many of you have no idea what exactly a log would be. Sony itself has this log file are also publicly retrievable through the URL. Mistake number two, perhaps? Here also some interesting logs:
    Code:
    214.1.211.251 - - [15/Apr/2011: 9:40:11 -0700] "GET / OfficeScan / cgi / cgiChkMasterPwd.exe HTTP/1.1" 404 336 "-" "-"
    
    178.202.110.92 - - [22/Apr/2011: 7:05:00 p.m. -0700] "GET / admin / cdr / counter.txt HTTP/1.1" 404 343 "-" "Mozilla/5.0 (compatible; Windows NT 6.1, de; rv: 1.9.2.16) Gecko/20110319 Firefox/3.6.16 "
    
    214.1.211.251 - - [15/Apr/2011: 9:40:09 -0700] "GET / _vti_bin / fpcount.exe? Page = default.htm | Image = 3 | Digits = 15 HTTP/1.0" 404 325 "- "" - "
    
    214.1.211.251 - - [15/Apr/2011: 9:39:51 -0700] "GET / scripts / foxweb.exe / HTTP/1.0" 404 324 "-" "-"
    
    214.1.211.251 - - [15/Apr/2011: 9:39:48 -0700] "GET / phpwebfilemgr / index.php? F =../../../ etc / services HTTP/1.0" 404 328 " - "" - "
    What we see here again include the use of an FVC, local file inclusion, in the last row. With this is that the ip 214.1.211.251, this is possibly the IP of the attacker. Nor has a number of Javascript injections occurred:
    Code:
    214.1.211.251 - - [15/Apr/2011: 9:39:49 -0700] "GET / board.php? <script> FID = alert (document.cookie) </ script> HTTP/1.0" 404 314 "- "" - "
    
    214.1.211.251 - - [15/Apr/2011: 9:39:38 -0700] "GET / servlet / webacc? User.id ="> <script> alert ('eeye2004') </ script> HTTP/1.0 " 404 319 "-" "-"
    
    214.1.211.251 - - [15/Apr/2011: 9:39:30 -0700] "GET / modules.php? Name = Reviews & rop = post & title =% 253cscript comment> alert 2528document.cookie%)% 253c/script> HTTP / 1.0 "404 316" - "" - "
    One interesting point I found is a not secured access log of a PSN environment. You will quickly notice the IP 214.1.211.251, which sends requests like a vulnerability scanner. The IP points to the DoD Network Information Center, based in Ohio USA.

    The first log entry of this IP is [03/Mar/2011:07:10:38 -0800]. As the DoD is knows as beeing easy to hack, the anonymous hacker could have used this as proxy."

    Sony PSN and Qriocity Update, Admit Account Info Compromised

    Sony PSN and Qriocity Update, Admit Account Info Compromised

    Sony PSN and Qriocity Update, Admit Account Info Compromised

    More PlayStation 3 News...
    Last edited by GrandpaHomer; 04-26-2011 at 05:21 PM

  8. #68
    Forum Moderator PS3 News's Avatar
    Join Date
    Apr 2005
    Posts
    27,820
    Wow, that definitely doesn't sound good but at least Sony is (slowly) keeping people in the loop on what is happening... Thanks for posting the update GrandpaHomer and +Rep.

  9. #69
    Senior Member barrybarryk's Avatar
    Join Date
    Oct 2010
    Posts
    1,082
    yeah and it only took them a week. I'm very glad all my PSN details were false lol

  10. #70
    Senior Member Chivafighter's Avatar
    Join Date
    Jan 2009
    Posts
    248
    Damn, well in a way those hackers attacked the PSN User and Sony is on our side right?

 

Sponsored Links
Page 7 of 35 FirstFirst ... 5678917 ... LastLast
Advertising - Affiliates - Contact Us - PS3 Downloads - Privacy Statement - Site Rules - Top - © 2014 PlayStation 3 News